Professional Documents
Culture Documents
Side Channel Attacks, PKCS, x509 Certificate
Side Channel Attacks, PKCS, x509 Certificate
PKCS
X 509 Certificate
What are Side-channel Attacks?
●
Cache Side Channel Attack
Attacks based on attacker's ability to monitor cache accesses made by the victim
in a shared physical system as in virtualized environment or a type of cloud
service.
Uses application behaviour of cache memory to leak data about the encryption
algorithm to the attacker
Different Ways in Which Information can be
Leaked from Cache Memory
Scheduling of Preemptive Type(Uniprocessor) In this attacker and
victim VM both uses the same CPU core and when the context switch
happens due to pre-emption the attacker can learn from the state in
which the victim leaves the cache.
The statistical analysis is used to find out the decryption key to break
the encryption algorithm
Electromagnetic attack
Electro-magnetic attacks are attacks caused by releasing the
electromagnetic emission liquidated from gadget and carries out signal
examination on the same.
Attack methods:
Acoustic cryptanalysis is a
type of side channel attack that
exploits sounds emitted by
computers or other devices.
Preventing Acoustic Cryptanalysis
This kind of cryptanalysis can be defeated by generating sounds that
are in the same spectrum and same form as keypresses. If sounds of
actual keypresses are randomly replayed, it may be possible to totally
defeat such kinds of attacks. It is advisable to use at least 5 different
recorded variations for each keypress to get around the issue of FFT
fingerprinting.
PK 1.1 Personal Defines a file format commonly used to store private keys with
CS Information accompanying public key certificates, protected with a
#12 Exchange password-based symmetric key. This container format can
Syntax contain multiple embedded objects, such as multiple
Standard certificates. Usually protected/encrypted with a password.
Usable as a format for the Java key store and to establish
client authentication certificates in Mozilla Firefox. Usable by
Apache Tomcat.
PKC – Elliptic Curve
S CryptographyStand
#13 ard
PKC – Pseudo-random
S Number Generation
#14
certificate is issued and the identity that issued it. Standard information in an
X.509 certificate includes: